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Applicant may not request that any objection to the drawing(s) be. held in abeyance. See 37 CFR 1.85(a). 
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DETAILED ACTION 

This action is in response to the papers filed 10/29/2007. Currently claims 1-16, 
1 9 and 20 are under consideration. 

Response to Arguments 

Applicant's arguments with respect to 35 U.S.C 101 have been fully considered 
and are persuasive. The applicants amendment is a deliberate attempt to not include a 
computer program product content downloaded from a secure network connection. 

Applicant's arguments with respect to 35 U.S.C 102(b) have been fully 
considered and are not persuasive. Applicant's arguments fail to comply with 37 
CFR 1 .1 1 1(b) because they amount to a general allegation that the claims define a 
patentable invention without specifically pointing out how the language of the claims 
patentably distinguishes them from the references. 

Claim Rejections - 35 USC § 102 

The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public 
use or on sale in this country, more than one year prior to the date of application for patent in the United 
States. 

Claim 1-15 are rejected under 35 U.S.C. 102(b) as being anticipated by Alegre et al 
(U.S. Patent 6,199,113). Alegre teaches with respect to claims 1 and 6, a method 
comprising: 
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receiving at the security host (see figure 2 elements 210 and 222) a request from a 
remote client to access a system host, the request including security credentials (see 
column 4 lines 17-24); 

providing a network address (see column 4 lines 32-67 i.e. Web host 210 also sends 
trusted network access presentation information to client browser 110, and The user selects 
an access request from the trusted network access presentation information to access 
trusted network 138. Client browser 110 sends the request, for example a URL associated 
with the selection) for the system host (see figure 2 trusted network) to the remote client 
(see figure 2 element 1 10) if security credentials for the remote client satisfy at least one 
condition for accessing the system host (see column 4 lines 32-67); 

following an attempt by the remote client to directly access the system host, 
receiving at the security host a request from the system host to verify that the remote client 
is authorized to access the system host (see column 4 lines 55-67); and 

transmitting from the security host to the system host a verification whereby the 
system host grants the remote client access to the system (see column 4 lines 55-67). 

With respect to claims 2 and 7, transmitting from the security host to the remote 
client a security key with the network address (see column 4 lines 32-47 i.e. session key) if 
the security credentials for the remote client satisfy the at least one condition for accessing 
the system host; and following an attempt by the remote client to directly access the system 
host, the attempt including a transmission of the security key evaluating the security key 
when it is received from the system host to verify that the remote client is authorized to 
access the system host (see column 4 lines 25-67). 
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With respect to claims 3 and 8, requiring the remote client present the system host 
with a valid security key to verify that the remote client is authorized to access the system 
host (see column 4 lines 32-67). 

With respect to claims 4 and 9, requiring the remote client timely present the system 
host with a security key to verify that the remote client is authorized to access the system 
host (see column 4 lines 32-42 i.e. Key server 234 creates a unique and unpredictable 
session key, and stores the session key, the UID, the PWD, and key expiration criteria in 
key database 236). 

With respect to claims 5 and 10, receiving the network address from the system host 
(see figure 2 element 210 web host and (see column 4 lines 32-67 i.e. Web host 210 also 
sends trusted network access presentation information to client browser 1 10, and The user 
selects an access request from the trusted network access presentation information to 
access trusted network 138. Client browser 110 sends the request, for example a URL 
associated with the selection). 

With respect to claims 11, a system comprising: an authorization module receiving a 
request from a remote client to access a system host (see column 4 lines 17-24 i.e. When 
the user wants to access trusted network 138, the user sends a request from client browser 
110, over Internet 1 14 and DMZ network 122, to web host 210), the authorization module 
providing the remote client with a network address of the system host (see column 4 lines 
32-67 i.e. Web host 210 also sends trusted network access presentation information to 
client browser 110, and The user selects an access request from the trusted network 
access presentation information to access trusted network 138. Client browser 110 sends 
the request, for example a URL associated with the selection) if the remote client is 
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authorized to access the system host (see column 4 lines 32-67); a verification module 
receiving a request from the system host to verify that the remote client is authorized to 
access the system host before granting the remote client access to the system host (see 
column 4 lines 32-67). 

With respect to claims 12, a security key provided to the remote client if the remote 
client is authorized to access the system host (see column 4 lines 32-67 i.e. session key). 

With respect to claims 13, a security key provided to the remote client for 
presentation to the system host to verify that the remote client is authorized to access the 
system host (see column 4 lines 32-67 i.e. session key). 

With respect to claims 14, a security key provided to the remote client for timely 
presentation to the system host to verify that the remote client is authorized to access the 
system host (see column 4 lines 32-42 i.e. Key server 234 creates a unique and 
unpredictable session key, and stores the session key, the UID, the PWD, and key 
expiration criteria in key database 236). 

With respect to claims 15, an address database having the network address of the 
system host (see column 4 lines 32-67 i.e. Web host 210 also sends trusted network access 
presentation information to client browser 110, and The user selects an access request 
from the trusted network access presentation information to access trusted network 138. 
Client browser 110 sends the request, for example a URL associated with the selection). 

Claim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 
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(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

Claim 16-20 rejected under 35 U.S.C. 103(a) as being unpatentable over Alegre et al 

(U.S. Patent 6,199,1 13) in view of Hull (U.S. Patent # 6,487,457). Alegre teaches everything 

with respect to claim 11 above but with respect to claim 16 he does not teach a 

configuration module for accessing a building automation system via the system host if the 

remote client is granted access to the system host. Hull teaches teach a configuration 

module for accessing a building automation system via the system host if the remote client 

is granted access to the system host (see Hull column 5 line 31-40 and column 6 lines 14- 

22). It would have been obvious at the time the invention was made to a person having 

ordinary skill in the art to which said subject matter pertains to have a remote client be able 

to connect to building automation system to monitor real time pricing and change the 

furnace thermostat, and AC, to allow the building to take advantage of the best utility rates 

(see hull column 5 line 27-59 and column 6 line 57 - column 7 line 7). Therefore one would 

have been motivated to have included a configuration module for accessing a building 

automation system via the system host if the remote client is granted access to the system 

host. 

With respect to claims 17, Hull teaches wherein the configuration module is provided 
at the remote client (see Hull column 6 line 57 - column 7 line 7). It would have been 
obvious at the time the invention was made to a person having ordinary skill in the art to 
which said subject matter pertains to have a remote client be able to connect to building 
automation system to monitor real time pricing and change the furnace thermostat, and AC, 



s 
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to allow the building to take advantage of the best utility rates by having the remote client 
have a user interface application for assessing the server and monitoring and controlling the 
building subsystems (see hull column 5 line 27-59 and column 6 line 57 - column 7 line 7). 
Therefore one would have been motivated to have included a configuration module for 
accessing a building automation system via the system host if the remote client is granted 
access to the system host. 

With respect to claims 18, wherein the configuration module is provided at a security 
host (see Hull abstract) It would have been obvious at the time the invention was made to a 
person having ordinary skill in the art to which said subject matter pertains to have a server 
be able to monitor real time pricing and change the furnace thermostat, and AC, to allow the 
building to take advantage of the best utility rates (see hull column 5 line 27-59 and column 
6 line 57 - column 7 line 7). Therefore one would have been motivated to have included a 
configuration module for accessing a building automation system via the system host if the 
remote client is granted access to the system host. 

With respect to claims 19, wherein the configuration module is provided for the 
remote client via a security host (see Hull column 6 line 57 - column 7 line 7). It would have 
been obvious at the time the invention was made to a person having ordinary skill in the art 
to which said subject matter pertains to have a remote client be able to connect to building 
automation system to monitor real time pricing and change the furnace thermostat, and AC, 
to allow the building to take advantage of the best utility rates by having the remote client 
have a user interface application for assessing the server and monitoring and controlling the 
building subsystems (see hull column 5 line 27-59 and column 6 line 57 - column 7 line 7). 
Therefore one would have been motivated to have included a configuration module for 
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accessing a building automation system via the system host if the remote client is granted 
access to the system host. 

With respect to claims 20, wherein the configuration module is provided for the 
remote client as a web application (see Hull abstract and column 6 line 57 - column 7 line 
7). It would have been obvious at the time the invention was made to a person having 
ordinary skill in the art to which said subject matter pertains to have a remote client be able 
to connect to building automation system to monitor real time pricing and change the 
furnace thermostat, and AC, to allow the building to take advantage of the best utility rates 
by having the remote client have a browser application for assessing the server and 
monitoring and controlling the building subsystems (see hull column 5 line 27-59 and 
column 6 line 57 - column 7 line 7). Therefore one would have been motivated to have 
included a configuration module for accessing a building automation system via the system 
host if the remote client is granted access to the system host. 

Conclusion 

Any inquiry concerning this communication or earlier communications from the examiner 
should be directed to Devin Almeida whose telephone number is 571-270-1018. The 
examiner can normally be reached on Monday-Thursday from 7:30 A.M. to 5:00 P.M. 
The examiner can also be reached on alternate Fridays from 7:30 A.M. to 4:00 P.M. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Gilberto Barron, can be reached on 571-272-3799. The fax phone number for 
the organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published 
applications may be obtained from either Private PAIR or Public PAIR. Status information 
for unpublished applications is available through Private PAIR only. For more information 
about the PAIR system, see http://pair-direct.uspto.gov. Should you have questions on 
access to the Private PAIR system, contact the Electronic Business Center (EBC) at 866- 
217-9197 (toll-free). 

Devin Almeida . ^ 



Patent Examiner 
11/14/2007 
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SUPERVISORY PATENT EXAMINER 
TECHNOLOGY CENTER 2100 



